We present an approach for controlling access to data publishers in the framework of Web-based information services. The paper presents a model for enforcing access control regulations, an XML core schema and namespace for expressing such regulations, and illustrates the architecture of the Access Control Unit (ACU), an autonomous software component based on the proposed model. Besides "standard" authorizations, the ACU supports authorizations based on user profiles and dynamic conditions whose outcome is determined by user actions such as the acceptance of a written agreement and/or payment.
A component-based architecture for secure data publication / P.A. Bonatti, E. Damiani, S. De Capitani di Vimercati, P. Samarati - In: Seventeenth Annual Computer Security Applications ConferenceLos Alamitos : IEEE, 2001. - ISBN 0769514057. - pp. 309-318 (( Intervento presentato al 17. convegno Annual Computer Security Applications Conference tenutosi a New Orleans nel 2001.
A component-based architecture for secure data publication
E. DamianiSecondo
;S. De Capitani di VimercatiPenultimo
;P. SamaratiUltimo
2001
Abstract
We present an approach for controlling access to data publishers in the framework of Web-based information services. The paper presents a model for enforcing access control regulations, an XML core schema and namespace for expressing such regulations, and illustrates the architecture of the Access Control Unit (ACU), an autonomous software component based on the proposed model. Besides "standard" authorizations, the ACU supports authorizations based on user profiles and dynamic conditions whose outcome is determined by user actions such as the acceptance of a written agreement and/or payment.
| File | Dimensione | Formato | |
|---|---|---|---|
|
114.pdf
accesso aperto
Tipologia:
Publisher's version/PDF
Dimensione
89.69 kB
Formato
Adobe PDF
|
89.69 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
